Enterprise-ready from day one.
SOC 2 Type II, SAML/SCIM, customer-managed encryption keys, immutable audit log, per-tenant isolation. Procurement-ready.
Compliance
SOC 2 Type II
Audited annually by an independent CPA firm. Report available under NDA.
Compliance
ISO 27001 / 42001
Information security and AI management systems certified.
Compliance
GDPR · CCPA · DPF
EU + UK DPAs. Standard Contractual Clauses on request.
Architecture
Per-tenant isolation
Schema-per-tenant, customer-managed KMS, no shared embeddings.
Architecture
Read-only by default
Write scopes require explicit per-action permission and a human approval step.
Architecture
Immutable audit log
Every agent action signed and append-only. SIEM export included.
AI safety
No training on your data
Customer data never enters base-model training. Opt-in fine-tunes only.
AI safety
Verifier model
Independent model checks every consequential output for errors.
AI safety
Confidence + abstention
Finmaro flags low-confidence outputs to a human reviewer.
Trust artifacts
Available under NDA via our trust portal.
| SOC 2 Type II report | Request → |
| Penetration test summary (annual) | Request → |
| Data Processing Addendum (DPA) | Download → |
| Subprocessor list | View → |
| AI usage & model disclosure | View → |